In message <05883710-136f-4dc2-8079-e29a68fed...@me.com>, Bryan Harris writes:
> Hi everyone,
>
> Thanks for all the detailed responses, I think I have a better
> understanding of things now. I was completely and totally confused about
> UDP/TCP. I am just going to take a wild guess that doing i
On 2013.06.05 10.02, Bryan Harris wrote:
> Hi all,
>
> I think I may be confused about a very basic DNS concept. Sorry if this has
> been asked before.
>
> 1. I have a master and two slaves.
> 2. The master server is the SOA for my zone. The SOA record points to the
> master server.
> 3. Each o
Bryan Harris wrote:
>
> After reading everything it looks to me like our hidden master configuration
> is basically okay, but by some of the best practices described, it could be
> better and easier to work with if we had a separate caching layer.
Note that the caches live on the client side of D
Hi Bryan,
At 09:52 05-06-2013, Bryan Harris wrote:
Regarding if we need a hidden master in the first place, I wish I
could remember. :-) It's been that way since I came here and I
suspect it's a requirement we will simply have to keep using.
Sometimes it is better to ask or else you can end u
Hi everyone,Thanks for all the detailed responses, I think I have a better understanding of things now. I was completely and totally confused about UDP/TCP. I am just going to take a wild guess that doing iptables the way I described would've caused a bunch of problems...After reading everything
The 'hidden master' setup is a very good strategy for a number of reasons.
I think the original description only derails a bit when using the term
'authoritative':
> I'm being told "our authoritative DNS
>> servers should not receive any queries", as well as "DNS slaves
>> respond to quer
On Jun 5, 2013, at 9:02 AM, Bryan Harris wrote:
> Hi all,
>
> I think I may be confused about a very basic DNS concept.
Many people are, but most don't a: know or B: admit it :-P
> Sorry if this has been asked before.
>
> 1. I have a master and two slaves.
> 2. The master server is the SOA
Everything you listed is pretty close to accurate.
A couple points of clarification.
8) The master needs UDP/TCP 53 open to the slaves. Before a zone transfer
can happen the slave needs to get the SOA RR from the master to see if the
serial number has changed. This normally happens over UDP 53(s
Hi all,I think I may be confused about a very basic DNS concept. Sorry if this has been asked before.1. I have a master and two slaves.2. The master server is the SOA for my zone. The SOA record points to the master server.3. Each of the two slaves are authoritative for my zone.4. There are 2 NS
9 matches
Mail list logo
